Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Nuclei
Nucleiadded 9 hours ago9 views

IBM BigFix Platform - Information Disclosure

IBM BigFix Platform 9.2 and 9.5 contains an information disclosure vulnerability caused by not enabling authenticated access in relay, letting remote attackers query and gather update and fixlet information, exploit requires no authentication. id: CVE-2019-4061 info: name: IBM BigFix Platform -...

5.3CVSS5.9AI score0.74625EPSS
Exploits2References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-45526

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00103EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-41228

Malicious code in bioql PyPI...

6.4CVSS6.1AI score0.00174EPSS
Exploits0References1
NVD
NVDadded 2023/10/11 7:15 a.m.15 views

CVE-2022-44758

BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized...

6.5CVSS6.8AI score0.00106EPSS
Exploits0References1
OSV
OSVadded 2023/10/11 7:15 a.m.2 views

CVE-2022-44758

BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized...

5.3CVSS5.8AI score0.00106EPSS
Exploits0References1
Prion
Prionadded 2023/10/11 7:15 a.m.19 views

Input validation

BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized...

5CVSS6.3AI score0.00106EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/10/11 6:0 a.m.18 views

CVE-2022-44758 HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper credential handling

BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized...

6.5CVSS6.7AI score0.00106EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/10/11 12:0 a.m.3 views

HCL Technologies BigFix Insights Security Breach

HCL Technologies BigFix Insights is HCL Technologies' accelerates risk identification and decision making through elevated views of endpoint queue data, rich reporting, and integration with existing business intelligence tools. A security vulnerability exists in HCL Technologies BigFix Insights...

6.5CVSS6.5AI score0.00106EPSS
Exploits0References2
OSV
OSVadded 2022/12/21 5:15 p.m.0 views

CVE-2022-38655

BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site...

5.8CVSS5.8AI score0.00174EPSS
Exploits0References1
NVD
NVDadded 2022/12/21 5:15 p.m.11 views

CVE-2022-38655

BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site...

6.4CVSS0.00174EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/12/21 12:0 a.m.3 views

HCL BigFix Platform 安全漏洞

HCL Technologies HCL BigFix Platform is a suite of endpoint security management platforms from HCL Technologies, USA. The platform supports automated discovery, management and remediation of endpoint security issues. A security vulnerability exists in the HCL BigFix Platform WebUI that stems from...

6.4CVSS5.8AI score0.00174EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/20 4:51 a.m.6 views

CVE-2022-38655 HCL BigFix WebUI is affected by a missing-permission-check vulnerability

BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site...

6.4CVSS6.5AI score0.00174EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/12/20 12:0 a.m.10 views

PT-2022-24505 · Ibm · Bigfix Webui

Name of the Vulnerable Software and Affected Versions: BigFix WebUI affected versions not specified Description: The issue concerns BigFix WebUI non-master operators who are missing necessary controls. These operators can modify the relevance of fixlets or deploy fixlets from the BES Support...

6.4CVSS5.5AI score0.00174EPSS
Exploits0References4
OSV
OSVadded 2022/12/19 11:15 a.m.0 views

CVE-2022-42453

There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the script is the logged in user, with insufficient warnings when attempting to run the script...

6.5CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2022/12/19 11:15 a.m.11 views

CVE-2022-42453

There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the script is the logged in user, with insufficient warnings when attempting to run the script...

6.9CVSS0.00103EPSS
Exploits0References1
Prion
Prionadded 2022/12/19 11:15 a.m.12 views

Authorization

There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the script is the logged in user, with insufficient warnings when attempting to run the script...

4CVSS6.4AI score0.00103EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2022/12/19 12:0 a.m.1 views

HCL Technologies HCL BigFix Platform 授权问题漏洞

HCL Technologies HCL BigFix Platform is a suite of endpoint security management platforms from HCL Technologies, USA. The platform supports automated discovery, management and remediation of endpoint security issues. HCL Technologies HCL BigFix Platform has a security vulnerability that stems fro...

6.9CVSS6.5AI score0.00103EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/17 7:3 p.m.4 views

CVE-2022-42453 HCL BigFix Platform is affected by insufficient warnings

There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the script is the logged in user, with insufficient warnings when attempting to run the script...

6.9CVSS6.7AI score0.00103EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/17 7:3 p.m.13 views

CVE-2022-42453 HCL BigFix Platform is affected by insufficient warnings

There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the script is the logged in user, with insufficient warnings when attempting to run the script...

6.9CVSS6.8AI score0.00103EPSS
Exploits0References1
CVE
CVEadded 2022/12/17 7:3 p.m.57 views

CVE-2022-42453

CVE-2022-42453 relates to the HCL BigFix Platform and involves insufficient warnings when a Fixlet is imported by a user. The warning currently assumes the script owner is the logged-in user, and warnings are also insufficient when attempting to run the script. Several connected records (CVE list...

6.9CVSS6.4AI score0.00103EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder